CVE-2022-31879

Online Fire Reporting System 1.0 is vulnerable to SQL Injection via the date parameter...

CVE-2025-40691

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'todate' parameter in the endpoint '/ofrs/admin/bwdates-report-result.php'...

EUVD-2025-21294

Malicious code in bioql PyPI...

EUVD-2025-21293

Malicious code in bioql PyPI...

CVE-2025-40694

Stored Cross Site Scripting in Online Fire Reporting System v1.2 by PHPGurukul, that consists in a stored authenticated XSS due to the lack of propper validation of user inputs 'fromdate' and 'todate' parameters via POST at the endpoint '/ofrs/admin/bwdates-report-result.php'. This vulnerability...

CVE-2025-40690

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'teamid' parameter in the endpoint '/ofrs/admin/edit-team.php'...

CVE-2025-40693

Stored Cross Site Scripting in Online Fire Reporting System v1.2 by PHPGurukul, that consists in a reflected and stored authenticated XSS due to the lack of propper validation of user inputs 'tname' parameter via GET and, 'teamleadname', 'teammember' and 'teamname' parameters via POST at the...

CVE-2025-40695 Cross Site Scripting in PHPGurukul Online Fire Reporting System

Stored Cross Site Scripting in Online Fire Reporting System v1.2 by PHPGurukul, that consists in a stored authenticated XSS due to the lack of propper validation of user inputs 'remark', 'status' and 'takeaction' parameters via POST at the endpoint '/ofrs/admin/request-details.php'. This...

CVE-2025-40693

CVE-2025-40693 : Stored Cross-Site Scripting in Online Fire Reporting System v1.2 (PHPGurukul) arises from insufficient validation of inputs: GET parameter tname and POST parameters teamleadname, teammember, and teamname at /ofrs/admin/edit-team.php. This authenticated XSS can enable an attacker ...

CVE-2025-40692 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'requestid' parameter in the endpoint '/ofrs/details.php'...

CVE-2025-40691 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'todate' parameter in the endpoint '/ofrs/admin/bwdates-report-result.php'...

CVE-2025-40690 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'teamid' parameter in the endpoint '/ofrs/admin/edit-team.php'...

CVE-2025-40689

CVE-2025-40689 affects Online Fire Reporting System v1.2 (PHPGurukul). The vulnerability is a SQL Injection in the /ofrs/admin/request-details.php endpoint, exploitable via the remark, status, and requestid parameters, enabling an attacker to retrieve, create, update, and delete records in the ba...

CVE-2025-40689 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'remark', 'status' and 'requestid' parameters in the endpoint '/ofrs/admin/request-details.php'...

CVE-2025-40687 SQL injection in PHPGurukul Online Fire Reporting System

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via 'mobilenumber', 'teamleadname' and 'teammember' parameters in the endpoint '/ofrs/admin/add-team.php'...

CVE-2025-40687

CVE-2025-40687 affects Online Fire Reporting System v1.2 (PHPGurukul). The root cause is an SQL injection flaw in the /ofrs/admin/add-team.php endpoint, exploitable via the mobilenumber, teamleadname, and teammember parameters. This can allow an attacker to retrieve, create, update, and delete da...

Online Fire Reporting System SQL注入漏洞

Online Fire Reporting System is an online fire reporting system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Online Fire Reporting System version 1.2, which stems from incorrect manipulation of the parameter teamid in the endpoint /ofrs/admin/edit-team.php, which...

Online Fire Reporting System 跨站脚本漏洞

Online Fire Reporting System is an online fire reporting system developed by Carlo Montero, an individual developer. A cross-site scripting vulnerability exists in Online Fire Reporting System version 1.2, which stems from insufficient validation of inputs for the parameters mark, status, and...

Online Fire Reporting System team-ontheway-requests.php File SQL Injection Vulnerability

Online Fire Reporting System is an online fire reporting system. The Online Fire Reporting System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter teamid in file /admin/team-ontheway-requests.php. An...

Online Fire Reporting System assigned-requests.php File SQL Injection Vulnerability

Online Fire Reporting System is an online fire reporting system. The Online Fire Reporting System suffers from an SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter teamid in the file /admin/assigned-requests.php. An...